Microsoft quietly repairs Windows Defender security hole CVE-2017-11937

Software Apps
Many malware researchers were surprised to find an unexpected patch on their machines yesterday. It didn’t arrive through the front door — Windows Update wasn’t involved. Instead, the new version of mpengine.dll arrived automatically, around the back, even if you have Windows Update turned off.

This vulnerability is particularly nasty. If the Malware Protection Engine scans a jimmied file, the file can take over your computer and run whatever it wants. Since the MPE routinely runs all the time, in the background, that means a bad file could infect your computer in myriad ways. To quote Microsoft’s Security Vulnerability notice:

Computerworld Operating Systems

About Gadget Rumors 15119 Articles
Gadget Rumors is Addicted to Latest Technology News .

Be the first to comment

Leave a Reply